twilight corner in the herm1t's cave

If a computer virus can be written, it will be written.
If a computer virus just cannot be written, it will be written anyway. It will just take a little bit longer.
(Murphy's laws on computer viruses)

Yet Another Disassembler (YAD 0.07) [README]
Linux.Lacrimae (up to 0.25.2) detected as Symantec name

Linux/Crimea, and a few samples as KAV name

Virus.Linux.Impok
Linux.PiLoT detected as Fortinet

ELF/Pildug, KAV

Virus.Linux.Piltot
(these and other new viruses was submitted to the EOF/DR/RRLF magazine and will be available here after release)
..P. Ferrie "Crimea River"

, VB, Feb 2008

, or the local copy here at vx heavens

Hashin' the elves [EN/RU], demo viruses Linux.Hasher.a,b,c,d (aka VirusBuster

Linux.HashCave, Fortinet

ELF/Small)
Snippets: Using ELF imports, using sysenter, infecting ELF files (before text, after data/bss, last seg, padding, replace)

Tribute to PDP-11/UNIX, UNIX.Dawn virus (aka VirusBuster

UNIX.Small.a)

Infecting ELF-files using function padding for Linux [EN/RU], Linux.Arches inside
RC4, RC5, TEA implementation
Arithmetic, LZW and RLE compression modules and demonstration virus Linux.Arian, also released in RRLF#7

The virus that is always with me... Linux.Beads.89
Yet Another Six Bytes: AC CD 29 E2 FB C3
FreeBSD.Egalite ( Symantec name

Linux.Hermalite) [binary] and [source], also released in RRLF#7
Linux.Grip (rel.2) (some variants detected as KAV name

Virus.Linux.Grip.b, Virus.Linux.Little [source, released in RRLF

#6] [binary]
Linux.Grip (rel.1) ( KAV name

Virus.Linux.Grip.a) [binary, released in su.virus

] [source]
  ..i found a typo in rel. 2 sources, so there is the patch to fix it, unpack sources and run: patch -p0 < Linux.Grip-typo.patch
  ..it is no wonder that single virus produced two families, though even a simple tool will find similarities (ps, 67K), raw data (bz2, 280k) (Feb 2005)..
  ..having a lots of options, the tempting and natural idea is to turn the virus into generator (ezXML,GTK2; zip, 44k) sceenshot (Sep 2005)..
  ..this virus attracted some attention from the avers: K. Sapronov 2005: *nix Malware Evolution

, J. Kaminsky Loathing Lupper in Linux

BrainFuck interpreter, Brainfuck to C converter (sed)
Password required

Archive of herm1t's LJ

Geoffrey James "The Tao of Programming

" (russian translation)
The crack for the IgorPlug USB

Simple client for the Nagios: nagv-0.91 and RPM package.
Dan Grabaham Warning: Virus!

, .net Issue 118 - Christmas 2003 (I answered a few questions there)
Kernel module called kMeep-Meeper will "pronounce Linux as Le-ee-n-oo-oks"
every time any process dies, based on UR3IJC's

idea and splicing code by Silvio Cesare
AX.25

over IP encapsulation driver for Linux, see RFC 1226

for details
This will help to extract files from the Web Compiler presentations (like VDAT)
K&R malloc/free implementation
Small LISP-like interpreter based on slisp-1.2

by Sandro Sigala
Two quines

written in LISP and SH and BASH.-$0
Quick approach to display MRTG graph in text console.
Some code for 18F252

, without comments and schematics it's mostly of no use.
..forgot, there's picup (a Linux uploader) for Tiny PIC bootloader

, tested and used with the tinybld163..
Slightly optimized version of Catchy32 engine by sars
Brain damaged games with gcc and ELF. Linux.CSmall.395/410
Linux.Futhork .a, .b, thread on comp.lang.lisp

Linux.ThinIce, Linux.Adhoc.b, Linux.Tahorg
$formdata=\text{mail+to+$herm1t$+at+$vx$+dot+$netlux$+dot+$org$}$